More security, middleware upgrade, dj-reg.2.5

urls.py

@@ -113,8 +113,6 @@ actualurlpatterns = [
     url(r'^prospecting/(?P<name>[^.]+).png$', prospecting_image, name="prospecting_image"),
     
     url(r'^expofiles/(?P<filepath>.*)$',  view_surveys.expofilessingle, name="single"), # EXPOFILES
-    url(r'^static/(?P<filepath>.*)$',     view_surveys.cssfilessingle,  name="single"), # MEDIA_ROOT: CSS and JS
-    url(r'^site_media/(?P<filepath>.*)$', view_surveys.cssfilessingle,  name="single"), # MEDIA_ROOT: CSS and JS 
 #   url(r'^javascript/(?P<filepath>.*)$', view_surveys.cssfilessingle,  name="single"), # JSLIB_URL - unused
 
 #   static views not working, removed as a plugin. Use apache instead to serve these:
@@ -122,9 +120,15 @@ actualurlpatterns = [
 #            {'document_root': settings.PHOTOS_ROOT, 'show_indexes':True}),
 #   url(r'^gallery/(?P<path>.*)$', staticviews.serve,
 #            {'document_root': settings.PHOTOS_ROOT, 'show_indexes':True}),
+ 
+#   url(r'^site_media/(?P<filepath>.*)$', view_surveys.cssfilessingle,  name="single"), # MEDIA_ROOT: CSS and JS 
+    url(r'^(site_media/.*)$',   flatviews.flatpage, name="flatpage"), # MEDIA_ROOT: CSS and JS 
 
-    url(r'^(.*)_edit$', flatviews.editflatpage, name="editflatpage"),
-    url(r'^(.*)$',      flatviews.flatpage,     name="flatpage"),
+#   url(r'^static/(?P<filepath>.*)$',     view_surveys.cssfilessingle,  name="single"), # MEDIA_ROOT: CSS and JS
+    url(r'^(static/.*)$',       flatviews.flatpage, name="flatpage"), # STATIC: CSS and JS 
+
+    url(r'^(.*)_edit$',         flatviews.editflatpage, name="editflatpage"),
+    url(r'^(.*)$',              flatviews.flatpage,     name="flatpage"), # files assumed relative to EXPOWEB
 ]
 
 #Allow prefix to all urls